CVE-2021-3114

Published January 26th, 2021

View on NVD ↗

CVSS v3

6.5

MEDIUM

CVSS v2

6.4

MEDIUM

Affected

PROJECT

Description

In Go before 1.14.14 and 1.15.x before 1.15.7, crypto/elliptic/p224.go can generate incorrect outputs, related to an underflow of the lowest limb during the final complete reduction in the P-224 field.

golang/go

The Go programming language

GitHub

135K